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AMENDMENTS TO THE CLAIMS ; 

Please amend claims 47, 51, 60, and 62, as indicated below. This listing of claims will 
replace all prior versions and listings of claims in the application. 
Listing of Claims : 
1.-32. (Cancelled) 

33. (Previously Presented) A method of authenticating a data processing terminal of 
a user for granting the data processing terminal access to selected services provided by a data 
processing system, the user being provided with an authenticatable mobile communication 
terminal adapted to be used in a mobile communication network, comprising: 

performing a first, SIM-based authentication of the user's data processing terminal in the 
data processing system at an authentication data processing server, said performing the SIM- 
based authentication comprising operatively associating with the user's data processing terminal 
a first subscriber identity module issued to the data processing terminal user; 

having the user's mobile communication terminal authenticated in the mobile 
communication network; and 

conditioning the authentication of the user's data processing terminal in the data 
processing system to a second authentication, said second authentication being based on 
identification information provided to the user at the mobile communication terminal through the 
mobile communication network using a second subscriber identity module. 

34. (Previously Presented) The method according to claim 33, wherein said second 
authentication comprises: 

generating a first password at the authentication data processing server; 
sending the first password to the mobile communication terminal over the mobile 
communication network; and 
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checking a correspondence between the first password and a second password, depending 
on the first password, entered at the data processing terminal and provided to the authentication 
data processing server through the data processing system. 

35. (Previously Presented) The method according to claim 34, comprising having the 
user entering the second password through the data processing terminal. 

36. (Previously Presented) The method according to claim 34, wherein the second 
password is entered automatically upon receipt of the first password at the user's mobile 
communication terminal. 

37. (Previously Presented) The method according to claim 34, wherein said first 
password is usable a limited number of times, or one time only. 

38. (Previously Presented) The method according to claim 33, comprising issuing to 
the user the second subscriber identity module adapted to be used in the user's mobile 
communication terminal for authentication thereof in the mobile communication network. 

39. (Previously Presented) The method according to claim 38, wherein the second 
subscriber identity module has a fixed, one-to-one relationship with the first subscriber identity 
module. 

40. (Previously Presented) The method according to claim 38, wherein the first 
subscriber identity module is associated with an identifier of the second subscriber identity 
module, or a mobile communication terminal number. 

41. (Previously Presented) The method according to claim 33, wherein said 
identification information is sent to the user's mobile communication terminal by way of a short 
message service message. 

42. (Previously Presented) The method according to claim 33, wherein said first 
subscriber identity module is of a type adopted in mobile communication networks for 

-3- 



Application No. 10/578,087 
Attorney Docket No. 09952.0033 

authenticating mobile communication terminals. 

43. (Previously Presented) The method according to claim 42, wherein said 
performing the first, SIM-based authentication of the data processing terminal comprises having 
the first subscriber identity module authenticated by an authentication server of the data 
processing system, the authentication server acting substantially as an authentication center of a 
mobile communication network operator. 

44. (Previously Presented) A method by which a data processing terminal in a data 
processing system is authenticated in order to be granted access to selected services provided by 
the data processing system, the method comprising: 

interacting with a first user's subscriber identity module (SIM) operatively associated 
with the data processing terminal, and with an authentication data processing server in the data 
processing system, for performing a SIM-based authentication of the user's data processing 
terminal; 

acquiring personal identification information provided to the user at a user's mobile 
communication terminal for a second authentication, wherein the second authentication is 
through a mobile communication network using a second subscriber identity module; and 

sending said personal identification information to the authentication data processing 
server for completing the authentication of the data processing terminal. 

45. (Previously Presented) The method of claim 44, in which the first subscriber 
identity module is of a type adopted in mobile communication networks for authenticating 
mobile communication terminals. 

46. (Previously Presented) The method of claim 45, further comprising: 
retrieving SIM identification data from the first subscriber identity module; 
communicating the retrieved SIM identification data to the authentication server, the 
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authentication server acting substantially as an authentication center of a mobile communication 
network operator; 

receiving from the authentication server SIM authentication data corresponding to the 
SIM identification data, and passing the SIM identification data to the first subscriber identity 
module; and 

communicating to the authentication server a response generated by the first subscriber 
identity module. 

47. (Currently Amended) A non-transitory computer-readable medium encoded with 
a computer program product directly loadable into a working memory of a data processing 
terminal, the computer program product comprising software code portion capable of 
performing, when executed, the method according to claim 44. 

48. (Previously Presented) A method by which an authentication data processing 
server authenticates a user's data processing terminal in a data processing system in order to 
grant the data processing terminal access to selected services provided by the data processing 
system, comprising: 

receiving a request of authentication of the data processing terminal, the data processing 
terminal having operatively associated therewith a first subscriber identity module; 

performing a SIM-based authentication of the data processing terminal based on data 
associated with the first subscriber identity module; 

providing the user with first personal identification information by exploiting a user's 
mobile communication terminal authenticated in a mobile communication network; and 

conditioning the authentication of the user's data processing terminal to a prescribed 
correspondence between the first personal identification information provided to the user and 
second personal identification information received from the user's data processing terminal 
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through the mobile communication network using a second subscriber identity module in reply 
to the provision of the first personal identification information. 

49. (Previously Presented) The method according to claim 48, wherein the first 
subscriber identity module is of a type adopted in mobile communication networks for 
authenticating mobile communication terminals, the authentication data processing server acting 
substantially as an authentication center of a mobile communication network operator. 

50. (Previously Presented) The method according to claim 49, further comprising: 
generating at the authentication data processing server a first password and sending the 

first password over the mobile communication network to the user's mobile communication 
terminal; and 

conditioning the authentication of the data processing terminal in the data processing 
system to a prescribed correspondence between the first password and a second password, 
depending on the first password, entered at the data processing terminal and provided to the 
authentication data processing server through the data processing system. 

5 1 . (Currently Amended) A non-transitory computer-readable medium encoded with 
a computer program product directly loadable into a working memory of an authentication data 
processing system, the computer program product comprising software code portion capable of 
performing, when executed, the method according to claim 48. 

52. (Cancelled) 

53. (Previously Presented) In a data processing system, a system for authenticating a 
data processing terminal of a user so as to grant the data processing terminal access to selected 
services provided by the data processing system, the user having an authenticatable mobile 
communication terminal adapted to be used in a mobile communication network, comprising: 

a first subscriber identity module operatively associatable with the data processing 
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terminal; and 

an authentication data processing server adapted to carry out a first authentication step 
based on the first subscriber identity module; 

the authentication data processing server being further adapted to carry out a second 
authentication process based on identification information provided to the user at the mobile 
communication terminal through the mobile communication network using a second subscriber 
identity module. 

54. (Previously Presented) The system according to claim 53, wherein the first 
subscriber identity module is of a type adopted in mobile communication networks for 
authenticating mobile communication terminals. 

55. (Previously Presented) The system according to claim 54, wherein the second 
subscriber identity module is used in the mobile communication terminal for authenticating the 
mobile communication terminal in a mobile communication network. 

56. (Previously Presented) The system according to claim 55, wherein the second 
subscriber identity module is in a fixed, one-to-one relationship with the first subscriber identity 
module. 

57. (Previously Presented) The system according to claim 55, wherein the second 
subscriber identity module is associated with an identifier of the second subscriber identity 
module, particularly a mobile communication terminal number. 

58. (Previously Presented) The system according to claim 53, wherein said first 
subscriber identity module is associated with a device connectable to the computer through a 
computer peripheral connection pot. 

59. (Previously Presented) The system according to claim 53, wherein said mobile 
communication network is one among a GSM, a GPRS, and a UMTS network. 
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60. (Currently Amended) An authentication kit for authenticating a user's data 
processing terminal in a data processing system in order to grant the data processing terminal 
access to selected services provided by the data processing system, comprising: 

a first subscriber identity module; 

a hardware computer peripheral device having associated therewith the first subscriber 
identity module and operatively associatable with the user's data processing terminal; and 

a second subscriber identity module operatively associated with a user's mobile 
communication terminal for allowing connection thereof to a mobile communication network. 

61 . (Previously Presented) The authentication kit according to claim 60, wherein the 
first subscriber identity module is of a type adopted in mobile communication networks for 
authenticating mobile communication terminals. 

62. (Currently Amended) An authentication kit for authenticating a user's data 
processing terminal in a data processing system in order to grant the data processing terminal 
access to selected services provided by the data processing system, comprising: 

a first subscriber identity module; 

a hardware computer peripheral device having associated therewith the first subscriber 
identity module and operatively associatable with the user's data processing terminal; 

a second subscriber identity module operatively associated with a user's mobile 
communication terminal for allowing connection thereof to a mobile communication network; 
and 

the computer program product of claim 47 or 5 1. 
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